Las traducciones son generadas a través de traducción automática. En caso de conflicto entre la traducción y la version original de inglés, prevalecerá la version en inglés.
AmazonConnectServiceLinkedRolePolicy
Descripción: Permite a Amazon Connect crear y gestionar AWS recursos en su nombre.
AmazonConnectServiceLinkedRolePolicy es una política administrada de AWS.
Uso de la política
Esta política está asociada a un rol vinculado a un servicio. Esto permite a dicho servicio realizar acciones por usted. No puede asociar esta política a los usuarios, grupos o roles.
Información de la política
-
Tipo: política de rol vinculado a un servicio
-
Hora de creación: 7 de septiembre de 2018 a las 00:21 UTC
-
Hora editada: 16 de enero de 2025 a las 21:52 UTC
-
ARN:
arn:aws:iam::aws:policy/aws-service-role/AmazonConnectServiceLinkedRolePolicy
Versión de la política
Versión de la política: v23 (predeterminado)
La versión predeterminada de la política define qué permisos tendrá. Cuando un usuario o un rol con la política solicita el acceso a un AWS recurso, AWS comprueba la versión predeterminada de la política para determinar si permite la solicitud.
Documento de política JSON
{
"Version" : "2012-10-17",
"Statement" : [
{
"Sid" : "AllowConnectActions",
"Effect" : "Allow",
"Action" : [
"connect:*"
],
"Resource" : [
"*"
]
},
{
"Sid" : "AllowDeleteSLR",
"Effect" : "Allow",
"Action" : [
"iam:DeleteRole"
],
"Resource" : "arn:aws:iam::*:role/aws-service-role/connect.amazonaws.com/AWSServiceRoleForAmazonConnect_*"
},
{
"Sid" : "AllowS3ObjectForConnectBucket",
"Effect" : "Allow",
"Action" : [
"s3:GetObject",
"s3:GetObjectAcl",
"s3:PutObject",
"s3:PutObjectAcl",
"s3:DeleteObject"
],
"Resource" : [
"arn:aws:s3:::amazon-connect-*/*"
]
},
{
"Sid" : "AllowGetBucketMetadataForConnectBucket",
"Effect" : "Allow",
"Action" : [
"s3:GetBucketLocation",
"s3:GetBucketAcl"
],
"Resource" : [
"arn:aws:s3:::amazon-connect-*"
]
},
{
"Sid" : "AllowConnectLogGroupAccess",
"Effect" : "Allow",
"Action" : [
"logs:CreateLogStream",
"logs:DescribeLogStreams",
"logs:PutLogEvents"
],
"Resource" : [
"arn:aws:logs:*:*:log-group:/aws/connect/*:*"
]
},
{
"Sid" : "AllowListLexBotAccess",
"Effect" : "Allow",
"Action" : [
"lex:ListBots",
"lex:ListBotAliases"
],
"Resource" : "*"
},
{
"Sid" : "AllowCustomerProfilesForConnectDomain",
"Effect" : "Allow",
"Action" : [
"profile:SearchProfiles",
"profile:CreateProfile",
"profile:UpdateProfile",
"profile:AddProfileKey",
"profile:ListProfileObjectTypes",
"profile:ListCalculatedAttributeDefinitions",
"profile:ListCalculatedAttributesForProfile",
"profile:GetDomain",
"profile:ListIntegrations",
"profile:GetIntegration",
"profile:PutIntegration",
"profile:DeleteIntegration",
"profile:ListEventTriggers",
"profile:ListSegmentDefinitions",
"profile:ListProfileAttributeValues",
"profile:CreateSegmentEstimate",
"profile:GetSegmentEstimate",
"profile:BatchGetProfile",
"profile:BatchGetCalculatedAttributeForProfile",
"profile:GetSegmentMembership"
],
"Resource" : "arn:aws:profile:*:*:domains/amazon-connect-*"
},
{
"Sid" : "AllowCustomerProfilesEventTriggerForConnectDomain",
"Effect" : "Allow",
"Action" : [
"profile:CreateEventTrigger",
"profile:GetEventTrigger",
"profile:UpdateEventTrigger",
"profile:DeleteEventTrigger"
],
"Resource" : [
"arn:aws:profile:*:*:domains/amazon-connect-*/event-triggers/*"
]
},
{
"Sid" : "AllowReadPermissionForCustomerProfileObjects",
"Effect" : "Allow",
"Action" : [
"profile:ListProfileObjects",
"profile:GetProfileObjectType",
"profile:ListObjectTypeAttributes"
],
"Resource" : [
"arn:aws:profile:*:*:domains/amazon-connect-*/object-types/*"
]
},
{
"Sid" : "AllowListIntegrationForCustomerProfile",
"Effect" : "Allow",
"Action" : [
"profile:ListAccountIntegrations"
],
"Resource" : "*"
},
{
"Sid" : "AllowReadForCustomerProfileObjectTemplates",
"Effect" : "Allow",
"Action" : [
"profile:ListProfileObjectTypeTemplates",
"profile:GetProfileObjectTypeTemplate"
],
"Resource" : "arn:aws:profile:*:*:/templates*"
},
{
"Sid" : "AllowWisdomForConnectEnabledTaggedResources",
"Effect" : "Allow",
"Action" : [
"wisdom:CreateContent",
"wisdom:DeleteContent",
"wisdom:CreateKnowledgeBase",
"wisdom:GetAssistant",
"wisdom:GetKnowledgeBase",
"wisdom:GetContent",
"wisdom:GetRecommendations",
"wisdom:GetSession",
"wisdom:NotifyRecommendationsReceived",
"wisdom:QueryAssistant",
"wisdom:StartContentUpload",
"wisdom:UpdateContent",
"wisdom:UntagResource",
"wisdom:TagResource",
"wisdom:CreateSession",
"wisdom:CreateQuickResponse",
"wisdom:GetQuickResponse",
"wisdom:SearchQuickResponses",
"wisdom:StartImportJob",
"wisdom:GetImportJob",
"wisdom:ListImportJobs",
"wisdom:ListQuickResponses",
"wisdom:UpdateQuickResponse",
"wisdom:DeleteQuickResponse",
"wisdom:PutFeedback",
"wisdom:ListContentAssociations",
"wisdom:CreateMessageTemplate",
"wisdom:UpdateMessageTemplate",
"wisdom:UpdateMessageTemplateMetadata",
"wisdom:GetMessageTemplate",
"wisdom:DeleteMessageTemplate",
"wisdom:ListMessageTemplates",
"wisdom:SearchMessageTemplates",
"wisdom:ActivateMessageTemplate",
"wisdom:DeactivateMessageTemplate",
"wisdom:CreateMessageTemplateVersion",
"wisdom:ListMessageTemplateVersions",
"wisdom:CreateMessageTemplateAttachment",
"wisdom:DeleteMessageTemplateAttachment",
"wisdom:RenderMessageTemplate",
"wisdom:CreateAIAgent",
"wisdom:CreateAIAgentVersion",
"wisdom:DeleteAIAgent",
"wisdom:DeleteAIAgentVersion",
"wisdom:UpdateAIAgent",
"wisdom:UpdateAssistantAIAgent",
"wisdom:RemoveAssistantAIAgent",
"wisdom:GetAIAgent",
"wisdom:ListAIAgents",
"wisdom:ListAIAgentVersions",
"wisdom:CreateAIPrompt",
"wisdom:CreateAIPromptVersion",
"wisdom:DeleteAIPrompt",
"wisdom:DeleteAIPromptVersion",
"wisdom:UpdateAIPrompt",
"wisdom:GetAIPrompt",
"wisdom:ListAIPrompts",
"wisdom:ListAIPromptVersions",
"wisdom:CreateAIGuardrail",
"wisdom:CreateAIGuardrailVersion",
"wisdom:DeleteAIGuardrail",
"wisdom:DeleteAIGuardrailVersion",
"wisdom:UpdateAIGuardrail",
"wisdom:GetAIGuardrail",
"wisdom:ListAIGuardrails",
"wisdom:ListAIGuardrailVersions",
"wisdom:CreateAssistant",
"wisdom:ListTagsForResource"
],
"Resource" : "*",
"Condition" : {
"StringEquals" : {
"aws:ResourceTag/AmazonConnectEnabled" : "True"
}
}
},
{
"Sid" : "AllowListOperationForWisdom",
"Effect" : "Allow",
"Action" : [
"wisdom:ListAssistants",
"wisdom:ListKnowledgeBases"
],
"Resource" : "*"
},
{
"Sid" : "AllowCustomerProfilesCalculatedAttributesForConnectDomain",
"Effect" : "Allow",
"Action" : [
"profile:GetCalculatedAttributeForProfile",
"profile:CreateCalculatedAttributeDefinition",
"profile:DeleteCalculatedAttributeDefinition",
"profile:GetCalculatedAttributeDefinition",
"profile:UpdateCalculatedAttributeDefinition"
],
"Resource" : [
"arn:aws:profile:*:*:domains/amazon-connect-*/calculated-attributes/*"
]
},
{
"Sid" : "AllowCustomerProfilesSegmentationForConnectDomain",
"Effect" : "Allow",
"Action" : [
"profile:CreateSegmentDefinition",
"profile:GetSegmentDefinition",
"profile:DeleteSegmentDefinition",
"profile:CreateSegmentSnapshot",
"profile:GetSegmentSnapshot"
],
"Resource" : [
"arn:aws:profile:*:*:domains/amazon-connect-*/segment-definitions/*"
]
},
{
"Sid" : "AllowPutMetricsForConnectNamespace",
"Effect" : "Allow",
"Action" : "cloudwatch:PutMetricData",
"Resource" : "*",
"Condition" : {
"StringEquals" : {
"cloudwatch:namespace" : "AWS/Connect"
}
}
},
{
"Sid" : "AllowSMSVoiceOperationsForConnect",
"Effect" : "Allow",
"Action" : [
"sms-voice:SendTextMessage",
"sms-voice:DescribePhoneNumbers"
],
"Resource" : "arn:aws:sms-voice:*:*:phone-number/*",
"Condition" : {
"StringEquals" : {
"aws:ResourceAccount" : "${aws:PrincipalAccount}"
}
}
},
{
"Sid" : "AllowCognitoForConnectEnabledTaggedResources",
"Effect" : "Allow",
"Action" : [
"cognito-idp:DescribeUserPool",
"cognito-idp:ListUserPoolClients"
],
"Resource" : "arn:aws:cognito-idp:*:*:userpool/*",
"Condition" : {
"StringEquals" : {
"aws:ResourceTag/AmazonConnectEnabled" : "True"
}
}
},
{
"Sid" : "AllowWritePermissionForCustomerProfileObjects",
"Effect" : "Allow",
"Action" : [
"profile:PutProfileObject"
],
"Resource" : [
"arn:aws:profile:*:*:domains/amazon-connect-*/object-types/*"
]
},
{
"Sid" : "AllowChimeSDKVoiceConnectorGetOperationForConnect",
"Effect" : "Allow",
"Action" : [
"chime:GetVoiceConnector"
],
"Resource" : "arn:aws:chime:*:*:vc/*",
"Condition" : {
"StringEquals" : {
"aws:ResourceTag/AmazonConnectEnabled" : "True",
"aws:ResourceAccount" : "${aws:PrincipalAccount}"
}
}
},
{
"Sid" : "AllowChimeSDKVoiceConnectorListOperationForConnect",
"Effect" : "Allow",
"Action" : [
"chime:ListVoiceConnectors"
],
"Resource" : "arn:aws:chime:*:*:vc/*",
"Condition" : {
"StringEquals" : {
"aws:ResourceAccount" : "${aws:PrincipalAccount}"
}
}
},
{
"Sid" : "SESPermissionsForManagingReceiptRules",
"Effect" : "Allow",
"Action" : [
"ses:DescribeReceiptRule",
"ses:UpdateReceiptRule"
],
"Resource" : "*",
"Condition" : {
"StringEquals" : {
"aws:ResourceAccount" : "${aws:PrincipalAccount}"
}
}
},
{
"Sid" : "SESPermissionForManagingConnectProvidedSESIdentity",
"Effect" : "Allow",
"Action" : [
"ses:DeleteEmailIdentity"
],
"Resource" : "arn:aws:ses:*:*:identity/*.email.connect.aws*",
"Condition" : {
"StringEquals" : {
"aws:ResourceAccount" : "${aws:PrincipalAccount}"
}
}
},
{
"Sid" : "SESConfigurationSetPermissionsForSendingEmail",
"Effect" : "Allow",
"Action" : [
"ses:SendRawEmail"
],
"Resource" : "arn:aws:ses:*:*:configuration-set/configuration-set-for-connect-DO-NOT-DELETE",
"Condition" : {
"StringEquals" : {
"aws:ResourceAccount" : "${aws:PrincipalAccount}"
}
}
},
{
"Sid" : "PassRoleToSESForReceiptRuleManagement",
"Effect" : "Allow",
"Action" : [
"iam:PassRole"
],
"Resource" : [
"arn:aws:iam::*:role/service-role/AmazonConnectEmailSESAccessRole"
],
"Condition" : {
"StringLike" : {
"iam:PassedToService" : "ses.amazonaws.com"
}
}
},
{
"Sid" : "AllowSocialMessagingOperations",
"Effect" : "Allow",
"Action" : [
"social-messaging:SendWhatsAppMessage",
"social-messaging:PostWhatsAppMessageMedia",
"social-messaging:GetWhatsAppMessageMedia",
"social-messaging:GetLinkedWhatsAppBusinessAccountPhoneNumber"
],
"Resource" : "arn:aws:social-messaging:*:*:phone-number-id/*",
"Condition" : {
"StringEquals" : {
"aws:ResourceTag/AmazonConnectEnabled" : "True",
"aws:ResourceAccount" : "${aws:PrincipalAccount}"
}
}
},
{
"Sid" : "AllowMobileTargetingOperationsForConnect",
"Effect" : "Allow",
"Action" : "mobiletargeting:SendMessages",
"Resource" : "arn:aws:mobiletargeting:*:*:apps/*",
"Condition" : {
"StringEquals" : {
"aws:ResourceAccount" : "${aws:PrincipalAccount}"
}
}
}
]
}Más información
